ClawHub

OpenSoul - An immutable, private soul for agent Self-reflection, self-improvement and on-chain economic activities.

v1.0.0

Enables AI agents to log immutable, encrypted audit trails on Bitcoin SV for persistent memory, self-reflection, and on-chain economic tracking.

5· 2.1k·3 current·6 all-time
by@mastergoogler
MIT-0
Download zip
LicenseMIT-0 · Free to use, modify, and redistribute. No attribution required.
Security Scan
VirusTotalVirusTotal
Benign
View report →
OpenClawOpenClaw
Suspicious
medium confidence
Purpose & Capability
The code and SKILL.md match the stated purpose (immutable agent logs on Bitcoin SV, PGP optional encryption, self-reflection, cost tracking). However the registry metadata declares no required environment variables or credentials while the runtime instructions and templates clearly require a Bitcoin SV private key (BSV_PRIV_WIF) and optionally PGP passphrase/files. This metadata omission is an incoherence that affects informed consent.
!
Instruction Scope
SKILL.md instructs the agent/user to generate or supply a real BSV private key (WIF), place private keys on disk or in environment variables, run an installation script (Scripts/install_prereqs.py), and flush logs to the public blockchain (OP_RETURN). Those instructions also recommend using --break-system-packages with pip and advise reading/writing private key/PGP files. Posting data to a public chain (unless encrypted) will make logs public; the agent will be able to create signed transactions that can spend funds. The instructions therefore require handling high-sensitivity secrets and performing network I/O that are outside a typical innocuous skill's scope.
Install Mechanism
The registry includes no formal install spec, but SKILL.md tells users to run Scripts/install_prereqs.py or pip install specific packages. That manual install flow is common for Python projects, but the documentation recommends using pip with --break-system-packages (an unusual/hostile option on some systems). Because there is an install script referenced, users should inspect Scripts/install_prereqs.py before running; absence of an install manifest in the registry is an inconsistency and increases risk if users run the script blindly.
!
Credentials
The skill logically requires a BSV private key and (optionally) PGP keys/passphrase to perform its on-chain logging and encryption. Those credentials are high-value: BSV_PRIV_WIF can sign transactions and spend coin. The registry declares no required env vars or primary credential, which is inconsistent and could mislead users into supplying secrets without realizing the capability. No unrelated third-party credentials are requested in the docs, so scope of credentials is narrowly related to the feature, but their sensitivity and the omission from metadata are concerning.
Persistence & Privilege
always:false and no OS restrictions are set; the skill does not request permanent platform-level inclusion or to modify other skills. Autonomy (disable-model-invocation:false) is normal for skills. Note: an autonomously-invokable skill that holds a blockchain private key increases potential impact if misused — review code that performs transactions to ensure it cannot unintentionally spend funds.
What to consider before installing
This package implements an agent logger that writes immutable entries to the Bitcoin SV chain and therefore needs a BSV private key (WIF) and optionally PGP keys/passphrase. Before installing or supplying secrets: 1) do NOT provide your main wallet private key — if you test this, create and fund a throwaway/test wallet (use testnet if possible) with a minimal balance; 2) inspect Scripts/install_prereqs.py and the AuditLogger implementation (Scripts/AuditLogger.py) to confirm what transactions are created and whether funds are sent (OP_RETURN only vs outputs to other addresses); 3) prefer a watch-only/read-only or hardware-backed signing approach if you need stronger guarantees; 4) ensure PGP encryption is enabled if logs contain sensitive data (otherwise data posted to the chain is public); 5) avoid running pip with --break-system-packages unless you understand its effects; and 6) ask the maintainer to update the registry metadata to declare required environment variables (BSV_PRIV_WIF, PGP_PASSPHRASE) so tooling and reviewers can see the credential requirements up front.

Like a lobster shell, security has layers — review code before you run it.

PGPvk97446ysfb3vh1v4npndz11kr98081azblockchainvk97446ysfb3vh1v4npndz11kr98081azlatestvk97446ysfb3vh1v4npndz11kr98081azloggingvk97446ysfb3vh1v4npndz11kr98081azmicrotransactionsvk97446ysfb3vh1v4npndz11kr98081azpersistent memoryvk97446ysfb3vh1v4npndz11kr98081azpublicvk97446ysfb3vh1v4npndz11kr98081azsoulvk97446ysfb3vh1v4npndz11kr98081azuntestedvk97446ysfb3vh1v4npndz11kr98081az

License

MIT-0
Free to use, modify, and redistribute. No attribution required.
Termshttps://spdx.org/licenses/MIT-0.html

Comments